Vulnerabilidades en code-projects

1284 resultados

Análisis Vexday

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2026-11490MEDIUMcode-projects Online Music Site Search.php sql injectionEPSS 0.3%CVE-2025-0228MEDIUMcode-projects Local Storage Todo App index.html cross site scriptingEPSS 0.3%CVE-2025-15050MEDIUMcode-projects Student File Management System save_file.php unrestricted uploadEPSS 0.3%CVE-2025-4068MEDIUMcode-projects Simple Movie Ticket Booking System changeprize stack-based overflowEPSS 0.3%CVE-2025-4059MEDIUMcode-projects Prison Management System Prison_Mgmt_Sys addrecord stack-based overflowEPSS 0.3%CVE-2025-4077MEDIUMcode-projects School Billing System searchrec stack-based overflowEPSS 0.3%CVE-2025-4069MEDIUMcode-projects Product Management System add_item stack-based overflowEPSS 0.3%CVE-2025-4029MEDIUMcode-projects Personal Diary Management System New Record addrecord stack-based overflowEPSS 0.3%CVE-2024-13019MEDIUMcode-projects Chat System Chat Room Page update_room.php cross site scriptingEPSS 0.3%CVE-2025-4062MEDIUMcode-projects Theater Seat Booking System cancel stack-based overflowEPSS 0.3%CVE-2025-6353MEDIUMcode-projects Responsive Blog search.php cross site scriptingEPSS 0.3%CVE-2025-4061MEDIUMcode-projects Clothing Store Management System add_item stack-based overflowEPSS 0.3%CVE-2025-4063MEDIUMcode-projects Student Information Management System cancel stack-based overflowEPSS 0.3%CVE-2026-7109MEDIUMcode-projects Invoice System in Laravel API Endpoint item improper authorizationEPSS 0.3%CVE-2025-4745MEDIUMcode-projects Employee Record System current_employees.php cross site scriptingEPSS 0.3%CVE-2025-4744MEDIUMcode-projects Employee Record System edit_employee.php cross site scriptingEPSS 0.3%CVE-2026-5541MEDIUMcode-projects Simple Laundry System Parameter modmemberinfo.php cross site scriptingEPSS 0.3%CVE-2026-5539MEDIUMcode-projects Simple Laundry System Parameter modifymember.php cross site scriptingEPSS 0.3%CVE-2025-9929MEDIUMcode-projects Responsive Blog Site blogs_view.php cross site scriptingEPSS 0.3%CVE-2026-2213MEDIUMcode-projects Online Music Site AdminAddAlbum.php unrestricted uploadEPSS 0.3%

← anteriorpágina 55 / 65siguiente →